Something awful happened to me.

Capricorn

Capricorn

Active member
Babiato Lover
Banned User
Apr 22, 2019
220
78
28
I know we have great web developers and those that have been developing websites for years.
I woke up this morning to login to my website and after the admin credentials, hit login and get "500 server error". I tried several times without luck.
I decided to enable debug from cpanel and try again and the information I found was that there was no "databasename.users" in database.
So i login to phpmyadmin and check the tables everything was OK but without the row of users.
The website was still loading well and only have issues when I to login.
Have anyone else ever experienced this problem?
Should I contact my website host or what.
I have other websites hosted on that same panel and they are working no issues.

Just before I go I forget to say the only thing I did on that website yesterday was that I login on through RDP to AWS.
 
Last edited:
MrNoLimits

MrNoLimits

Well-known member
Jul 31, 2019
501
266
63
NYC
Hygine said:
I know we great web developers and those that have been developing websites for years.
I woke up this morning to login to my website and after the admin credentials, hit login and get "500 server error". I tried several times without luck.
I decided to enable debug from cpanel and try again and the information I found was that there was no "databasename.users" in database.
So i login to phpmyadmin and check the tables everything was OK but without the row of users.
The website was still loading well and only have issues when I to login.
Have anyone else ever experienced this problem?
Should I contact my website host or what.
I have other websites hosted on that same panel and they are working no issues.

Just before I go I forget to say the only thing I did on that website yesterday was that I login on through RDP to AWS.
Click to expand...
Where did you buy the VPS from?
 
MrNoLimits

MrNoLimits

Well-known member
Jul 31, 2019
501
266
63
NYC
Hygine said:
AWS Amazon
Click to expand...
Oh, i thought you got it from somebody else.
Well, in that case it's weird.

My educated guess it that your server was hacked and somebody hurt you on purpose, what happened to you is not random.
Get in touch with Amazon and ask them to check the incoming login attempts to your server and change your login credentials.
 
  • Like
Reactions: ibrahim and Capricorn
Mrsam_1

Mrsam_1

Well-known member
Administrative
Trusted Seller
Dec 1, 2018
25,356
28,226
120
Hygine said:
everything was OK but without the row of users
Click to expand...

It doesn't seem like a hosting issue. For cross reference check your access log and compare it with error log for the period of time since last working till now.

It sounds more like a protection mechanism than a hack.
 
  • Like
Reactions: Capricorn
Capricorn

Capricorn

Active member
Babiato Lover
Banned User
Apr 22, 2019
220
78
28
slvrsteele said:
It doesn't seem like a hosting issue. For cross reference check your access log and compare it with error log for the period of time since last working till now.

It sounds more like a protection mechanism than a hack.
Click to expand...
Alright. I will check that.
 
Mrsam_1

Mrsam_1

Well-known member
Administrative
Trusted Seller
Dec 1, 2018
25,356
28,226
120
Hygine said:
Alright. I will check that.
Click to expand...

I can bet you'll find nothing but that's for assuring you it wasn't a hack.
Eventually a remote call that triggered some hidden functions in the script.
Check all weird path requests with 200 response and see what those files contain (functions wise).
 
Capricorn

Capricorn

Active member
Babiato Lover
Banned User
Apr 22, 2019
220
78
28
slvrsteele said:
I can bet you'll find nothing but that's for assuring you it wasn't a hack.
Eventually a remote call that triggered some hidden functions in the script.
Check all weird path requests with 200 response and see what those files contain (functions wise).
Click to expand...
You mean it's possible for the developer to remote access to the database.
"Foodomaa"
 
Mrsam_1

Mrsam_1

Well-known member
Administrative
Trusted Seller
Dec 1, 2018
25,356
28,226
120
Not remote access the database. Remote access a function that removes a table from the database.
Imagine an unofficial version is used in production and holder gets some serious income on behalf of it.
What's most painful? To lose some database. Think that removing the users tables all related conditions will crash.
No more vendors, no more clients. Even if you re-create the accounts they won't have the exact same identifier as you cannot remember exactly their order (on big databases) so other allocated queries based on user id will return bogus data

Or instead of remote access it might be an internal function that checks for something and if is not the result expected it removes the tables.
 
  • Like
Reactions: Capricorn
MrNoLimits

MrNoLimits

Well-known member
Jul 31, 2019
501
266
63
NYC
slvrsteele said:
Not remote access the database. Remote access a function that removes a table from the database.
Imagine an unofficial version is used in production and holder gets some serious income on behalf of it.
What's most painful? To lose some database. Think that removing the users tables all related conditions will crash.
No more vendors, no more clients. Even if you re-create the accounts they won't have the exact same identifier as you cannot remember exactly their order (on big databases) so other allocated queries based on user id will return bogus data

Or instead of remote access it might be an internal function that checks for something and if is not the result expected it removes the tables.
Click to expand...
So the developer made a self-trigger function to screw their clients? Maybe it was triggered because we kinda nulled the script and the developer hide it there to make sure nobody uses nulled versions and survive
 
  • Like
Reactions: Capricorn and Mr G
Mrsam_1

Mrsam_1

Well-known member
Administrative
Trusted Seller
Dec 1, 2018
25,356
28,226
120
MrK said:
So the developer made a self-trigger function to screw their clients? Maybe it was triggered because we kinda nulled the script and the developer hide it there to make sure nobody uses nulled versions and survive
Click to expand...

I know a licensing script that deletes everything in the html root folder if nulled or some checks are not receiving the desired results.
 
  • Like
Reactions: MrNoLimits
Capricorn

Capricorn

Active member
Babiato Lover
Banned User
Apr 22, 2019
220
78
28
Good answer is using a nulled script on a production website is a huge risk.
 
You must log in or register to reply here.

Similar threads

semre57
Sell Something On Babiato
Replies
1
Views
379
General Discussion
otaibabusername
otaibabusername
naveedishfaq
I have rockhyip installed on my website i want to modify something
Replies
1
Views
451
General Discussion
andrecrypt
andrecrypt
Silva
Something is wrong????
Replies
12
Views
696
General Discussion
ChintanBhat
ChintanBhat
RogerM
Something´s Wrong with Babiato Homepage (At least on my end)
Replies
2
Views
561
General Discussion
tuton012
tuton012
Faizan Ahmad
  • Locked
Script or something else
Replies
1
Views
668
General Discussion
drug
drug

Latest posts

Forum statistics

Threads
70,034
Messages
914,971
Members
244,895
Latest member
cfaniaq86

Share this page

Share this page

About us

  • Our community has been around for many years and pride ourselves on offering unbiased, critical discussion among people of all different backgrounds. We are working every day to make sure our community is one of the best.

Quick Navigation

Forums Contact us

User Menu

Login
Community platform by XenForo © 2010-2022 XenForo Ltd.
Top Bottom